CVE-2025-9231
- EPSS 2.23%
- Veröffentlicht 30.09.2025 14:15:41
- Zuletzt bearbeitet 02.06.2026 14:16:40
Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit A...
CVE-2025-9230
- EPSS 1.74%
- Veröffentlicht 30.09.2025 14:15:41
- Zuletzt bearbeitet 02.06.2026 14:16:40
Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read and write. Impact summary: This out-of-bounds read may trigger a crash which leads to Denial of Service for an a...
CVE-2025-7039
- EPSS 0.37%
- Veröffentlicht 03.09.2025 02:15:38
- Zuletzt bearbeitet 02.06.2026 14:16:39
A flaw was found in glib. An integer overflow during temporary file creation leads to an out-of-bounds memory access, allowing an attacker to potentially perform path traversal or access private temporary file content by creating symbolic links. This...
CVE-2025-8732
- EPSS 0.16%
- Veröffentlicht 08.08.2025 16:32:06
- Zuletzt bearbeitet 01.07.2026 15:25:19
A vulnerability was found in libxml2 up to 2.14.5. It has been declared as problematic. This vulnerability affects the function xmlParseSGMLCatalog of the component xmlcatalog. The manipulation leads to uncontrolled recursion. Attacking locally is a ...
CVE-2025-6141
- EPSS 0.17%
- Veröffentlicht 16.06.2025 22:00:17
- Zuletzt bearbeitet 02.06.2026 14:16:38
A vulnerability has been found in GNU ncurses up to 6.5-20250322 and classified as problematic. This vulnerability affects the function postprocess_termcap of the file tinfo/parse_entry.c. The manipulation leads to stack-based buffer overflow. The at...
CVE-2025-49795
- EPSS 0.48%
- Veröffentlicht 16.06.2025 15:19:29
- Zuletzt bearbeitet 07.07.2026 13:16:28
A NULL pointer dereference vulnerability was found in libxml2 when processing XPath XML expressions. This flaw allows an attacker to craft a malicious XML input to libxml2, leading to a denial of service.
CVE-2025-4373
- EPSS 0.47%
- Veröffentlicht 06.05.2025 14:48:39
- Zuletzt bearbeitet 30.06.2026 11:16:21
A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.